reference LINKS:

IMPACT ASSESSMENT:

High

Discussion:

This vulnerability only affects Secure Gateway version 3.1.4. Secure Gateway version 3.2.0 is not affected by this vulnerability, but Citrix recommends that customers currently using this version upgrade their deployments to version 3.2.1 in line with the guidance provided in CTX123359

A vulnerability has been reported in Citrix Secure Gateway, which can be exploited by malicious people to compromise a vulnerable system.The vulnerability is caused due to an unspecified error. Successful exploitation may allow execution of arbitrary code.

Solution:

Citrix has released a new version of Secure Gateway to address this vulnerability, and recommends that customers upgrade to this version. The software can be downloaded from the Citrix website at the following locations: